Class Notes


The order of topics covered or dates specified are subject to change. Any changes will be discussed in class.

Class notes will be placed here.

Course Outline:

The course outline requires the coverage of the following topics:
  1. Crosscutting Concepts in Cybersecurity
    1. Confidentiality, integrity, availability
    2. Risk
    3. Adversarial thinking
    4. Systems thinking
  2. Software Security
    1. Fundamental design principles for secure software
    2. Security requirements and their role in system design
    3. Implementation issues
    4. Software testing
    5. Ethics related to development, testing and vulnerability disclosure
  3. Component Security
    1. Vulnerabilities of system components
    2. Component life cycle
  4. Connection Security
    1. Introduction to data communications
    2. Network architectures and models
    3. Connection and transmission attacks
  5. System access and authentication
    1. Basic cryptographic concepts
    2. Authentication methods
    3. Identity
    4. Attacks and mitigation measures
  6. Human Security
    1. Social engineering
      1. Types of social engineering attacks
      2. Psychology of social engineering attacks
    2. Awareness and understanding of security issues
      1. System misuse and user misbehavior
      2. Proper behavior under uncertainty
      3. Enforcement and rules of behavior
    3. Privacy
      1. Social and behavioral privacy
      2. Social media privacy and security
  7. Organizational Security
    1. Risk and risk management
    2. Secure governance and policy
    3. Systems administration
  8. Societal Security
    1. Cybercrime
    2. Cyber ethics
    3. The role of policy